def login_admin_post(): email=request.form.get('email') password=request.form.get('password') token =request.form.get('token') remember = True if request.form.get('remember') else False user=User.find_user_by_email(email=email) user1=User.verify_reset_password_token(token) print(user1) if user1: user1.is_confirmed=True user1.save_data if user and check_password_hash(user.password,password): login_user(user,remember=remember,force=True) return redirect(url_for('admin.show_dashboard')) else: flash('Please check your login details and try again') return redirect(url_for('admin.signup_admin'))
def signup_admin_post(): email = request.form.get('email') username = request.form.get('username') password=request.form.get('password') user=User.find_user_by_email(email=email) if user: flash('Email address already exist') return redirect(url_for('admin.login_admin')) #fetching user data from the login form new_user= User(username,email,password) new_user.save_data token=new_user.get_reset_password_token(600) #send user a confirmation email to confirmed account. send_email('Pheme Confirmation Email', sender=Configuration.MAIL_DEFAULT_SENDER,recipients=[new_user.email], text_body=render_template('/confirm.txt',title ='Account Confirmation Email',user=new_user,token=token), html_body= render_template('/confirm.html',title='Account Confirmation Email',user=new_user,token=token)) flash('Check your signup mail to confirmation your account!') return redirect(url_for('admin.login_admin'))
def forget_password_post(): email = request.form.get('email') user = User.find_user_by_email(email=email) if user: token = user.get_reset_password_token(600) send_email('Pheme Account Reset', sender=Configuration.MAIL_DEFAULT_SENDER, recipients=[user.email], text_body=render_template('/reset_password.txt', user=user, token=token), html_body=render_template('/message.html', title='Email', user=user, token=token)) return redirect(url_for('admin.login_admin')) else: flash('Wrong email address') return redirect(url_for('email.forget_password'))
def load_user(email): # since the user_id is just the primary key of our user table, use it in the query for the user return User.find_user_by_email(email=email)